Atty. Dkt. No. 053969-0157 



Amendments to the Claims; 

This listing of claims will replace all prior versions, and listings, of claims in the application: 

Listing of Claims; 

1 . (Previously Presented) A network comprising: 

EPsec processing apparatuses, which use an IPsec (hitemet Protocol security 
protocol) for securing security on the hitemet path in the case where different two centers 
communicate via the hitemet; and 

an IPsec setting server apparatus, which manages IPsec settings of said IPsec 
processing apparatuses, 

wherein said IPsec setting server apparatus includes means for collectively 
managing policies of said IPsec to be applied between first and second IPsec processing 
apparatuses, and 

wherein said IPsec setting server apparatus includes means for specifying policies 
of said IPsec to be applied between said first and second IPsec processing apparatuses based 
upon contents of a request message for communication between said first and second IPsec 
processing apparatuses received from said first IPsec processing apparatus. 

2. (Cancelled) 

3. (Previously Presented) The network according to claim 1, 

wherein said IPsec setting server apparatus includes means for, upon receiving the 
request message, transmitting a request startup message to said second IPsec processing 
apparatus, which is an opposite party of commimication of said first IPsec processing apparatus 
which has transmitted the request message, in order to cause said second IPsec processing 
apparatus to transmit a request message for the communication. 
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4. (Original) The network according to claim 3, 

wherein said DPsec setting server apparatus includes means for, when there is no 
response to the request startup message, notifying said first IPsec processing apparatus that there 
is no response from said second IPsec processing apparatus. 

5. (Previously Presented) The network according to claim 1, 

wherein said IPsec setting server apparatus includes means for generating SA 
(Security Association) parameters to be required in the BPsec commxmication from contents of 
the request message and contents of the policies of said IPsec to be applied to the 
communication. 

6. (Previously Presented) The network according to claim 1 , 

wherein said EPsec setting server apparatus includes means for sending a 
distribution message including at least the policies of said EPsec and the SA parameters in 
response to the request message. 

7. (Original) The network according to claim 1, 

wherein said IPsec setting server apparatus includes means for generating a 
common secret key to be used in encryption and authentication of said IPsec and means for 
distributing the generated common secret key to said BPsec processing apparatus. 

8. (Previously Presented) An IPsec setting server apparatus managing BPsec 
setting of DPsec processing apparatuses, which use an BPsec (Intemet Protocol security protocol) 
for securing security on the Intemet path in the case where different two centers commimicate via 
the Intemet, 
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wherein said IPsec setting server apparatus includes means for collectively 
managing policies of said IPsec to be applied among sad IPsec processing apparatuses, and 

v^herein said IPsec setting server apparatus includes means for specifying policies 
of said IPsec to be applied between an IPsec processing apparatus and another IPsec processing 
apparatus based upon contents of a request message for cormnunication between said IPsec 
processing apparatus and another IPsec processing apparatus received from said IPsec processing 
apparatus. 

9. (Cancelled) 

10. (Previously Presented) The IPsec setting server apparatus according to 

claim 8, 

wherein said IPsec setting server apparatus includes means for, upon receiving the 
request message, transmitting a request startup message to an IPsec processing apparatus, which 
is an opposite party of communication of an IPsec processing apparatus which has transmitted 
the request message, in order to cause said IPsec processing apparatus of the opposite party of 
communication to transmit a request message for the communication. 

1 1 . (Original) The IPsec setting server apparatus according to claim 10, 

wherein said IPsec setting server apparatus includes means for, when there is no 
response to the request startup message, notifying said EPsec processing apparatus which has 
transmitted the request message that there is no response from said IPsec processing apparatus of 
the opposite party of communication. 
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12. (Previously Presented) The IPsec setting server apparatus according to 

claim 8, 

wherein said IPsec setting server apparatus includes means for generating S A 
(Security Association) parameters to be required in the IPsec communication from contents of 
the request message and contents of the policies of said IPsec to be applied to the 
communication. 

13. (Previously Presented) The IPsec setting server apparatus according to 

claim 8, 

wherein said IPsec setting server apparatus includes means for transmitting a 
distribution message including at least the policies of said IPsec and the S A parameters in 
response to the request message. 

14. (Original) The IPsec setting server apparatus according to claim 8, 

wherein said IPsec setting server apparatus includes means for generating a 
common secret key to be used in encryption and authentication of said IPsec and a function for 
distributing the generated comumon secret key to said IPsec processing apparatus. 

15. (Previously Presented) An IPsec processing apparatus using an EPsec 
(Intemet Protocol security protocol) on the Intemet, 

wherein said IPsec processing apparatus includes means for, upon receiving a 
packet to which said IPsec should be applied, judging whether or not to inquire a setting for said 
IPsec to be collectively managed in an IPsec setting server apparatus from said IPsec setting 
server apparatus, and 
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wherein said IPsec processing apparatus includes means for transmitting a request 
message for communication with another EPsec processing apparatus to said IPsec setting server 
apparatus in order to acquire a setting for said IPsec. 

16. (Cancelled) 

17. (Previously Presented) The IPsec processing apparatus according to claim 

15, 

wherein, upon receiving a request startup message for causing said IPsec 
processing apparatus to transmit the request message from said IPsec setting server apparatus, 
said EPsec processing apparatus transmits the request message. 

18. (Original) The IPsec processing apparatus according to claim 15, 

wherein said DPsec processing apparatus includes means for setting an SPD, in 
which policies for applying said IPsec is recorded, and an SAD, in which an S A (security 
Association) necessary for subjecting an individual kind of commimication to processing of said 
IPsec, based upon a distribution message received from said IPsec setting server apparatus. 

19. (Original) The IPsec processing apparatus according to claim 15, 

wherein said EPsec processing apparatus includes means for acquiring a common 
secret key to be used in encryption and authentication of said BPsec from said IPsec setting server 
apparatus. 

20. (Original) The EPsec processing apparatus according to claim 15, 
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wherein said DPsec processing apparatus includes means for retransmitting the 
request message to said DPsec setting server apparatus and acquiring new setting information 
before a term of vaUdity of the SA expires. 

2 1 . (Previously Presented) An IPsec setting method for a network which 
comprises: IPsec processing apparatuses, which use an IPsec (Intemet Protocol security protocol) 
for securing security on the Intemet path in the case where different two centers communicate via 
the Intemet; and an IPsec setting server apparatus, which manages IPsec settings of said IPsec 
processing apparatuses, 

wherein said IPsec setting server apparatus includes a step of collectively 
managing policies of said DPsec to be applied among said IPsec processing apparatuses, and 

wherein said IPsec setting server apparatus includes a step of specifying policies 
of said IPsec to be applied between an DPsec processing apparatus and another IPsec processing 
apparatus based upon contents of a request message for communication between said IPsec 
processing apparatus and another IPsec processing apparatus received from said IPsec processing 
apparatus. 

22. (Cancelled) 

23. (Previously Presented) The DPsec setting method according to claim 21, 

wherein said DPsec setting server apparatus includes a step of, upon receiving the 
request message, sending a request startup message to an IPsec processing apparatus, which is an 
opposite party of communication of an DPsec processing apparatus which has transmitted the 
request message, in order to cause said IPsec processing apparatus of the opposite party of 
communication to transmit a request message for the commimication. 
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24. (Original) The IPsec setting method according to claim 23, 

wherein said IPsec setting server apparatus includes a step of, when there is no 
response to the request startup message, notifying said IPsec processing apparatus which has 
transmitted the request message that there is no response from said IPsec processing apparatus of 
the opposite party of communication. 

25. (Previously Presented) The IPsec setting method according to claim 21, 

wherein said IPsec setting server apparatus includes a step of generating SA 
(Security Association) parameters to be required in the IPsec commxxnication from contents of 
the request message and contents of the policies of said IPsec to be applied to the 
commtmication. 

26. (Previously Presented) The IPsec setting method according to claim 21, 

wherein said EPsec setting server apparatus includes a step of transmitting a 
distribution message including at least the policies of said IPsec and the SA parameters in 
response to the request message. 

27. (Original) The IPsec setting method according to claim 21, 

wherein said IPsec setting server apparatus includes a step of generating a 
common secret key to be used in encryption and authentication of said IPsec and a step of 
distributing the generated common secret key to said IPsec processing apparatus. 

28. (Original) The IPsec setting method according to claim 21, 
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wherein, upon receiving a packet to which said IPsec should be applied, said IPsec 
processing apparatus judges whether or not to inquire a setting for said IPsec to be collectively 
managed in an IPsec setting server apparatus from said IPsec setting server apparatus. 

29. (Original) The EPsec setting method according to claim 21 , 

wherein said IPsec processing apparatus transmits a request message for 
communication with another DPsec processing apparatus to said IPsec setting server apparatus in 
order to acquire a setting for said IPsec. 

30. (Original) The IPsec setting method according to claim 21, 

wherein said IPsec processing apparatus sets an SPD, in which policies for 
applying said IPsec is recorded, and an SAD, in which an SA (Security Association) necessary 
for subjecting an individual kind of communication to processing of said IPsec, based upon a 
distribution message received from said IPsec setting server apparatus. 

3 1 . (Original) The IPsec setting method according to claim 2 1 , 

wherein said IPsec processing apparatus acquires a common secret key to be used 
in encryption and authentication of said IPsec from said IPsec setting server apparatus. 

32. (Original) The IPsec setting method according to claim 21, 

wherein said IPsec processing apparatus resends the request message to said IPsec 
setting server apparatus and acquires new setting information before a term of validity of the SA 
expires. 
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